CVE-2024-27815 | THREATINT

Description

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. An app may be able to execute arbitrary code with kernel privileges.

PUBLISHED Reserved 2024-02-26 | Published 2024-06-10 | Updated 2026-04-02 | Assigner apple

Problem types

An app may be able to execute arbitrary code with kernel privileges

Product status

Any version before 17.5

affected

Any version before 14.5

affected

Any version before 17.5

affected

Any version before 1.2

affected

Any version before 10.5

affected

References

support.apple.com/en-us/HT214101

support.apple.com/en-us/HT214106

support.apple.com/en-us/HT214108

support.apple.com/en-us/HT214104

support.apple.com/en-us/HT214102

support.apple.com/kb/HT214102

support.apple.com/kb/HT214104

support.apple.com/kb/HT214106

support.apple.com/kb/HT214101

support.apple.com/kb/HT214108

seclists.org/fulldisclosure/2024/Jun/5

support.apple.com/en-us/120901

support.apple.com/en-us/120902

support.apple.com/en-us/120903

support.apple.com/en-us/120905

support.apple.com/en-us/120906

cve.org (CVE-2024-27815)

nvd.nist.gov (CVE-2024-27815)

Download JSON

help @ threatint.eu